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Amendments to the Claims: 

This listing of Claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1-34 (Cancelled) 

35, (Currently Amended) A system for e nd - us e r contro l of a d i str i bution and 
maint e nanc e of distributing and maintaining e nd-user personal profile data in a data 
communications system , said system providing communication between applications 
using said personal profile data h a v i ng or communicating with s e rvice, information, or 
cont e nt prov i ders or - holding mo a n s h a ving e nd user personal profile data , the system 
comprising: 

a p e rsonal profi le prot e ction network with at l e ast on e central protection server 
means having or communicating - with an informat i on ho l d i ng m e ans holding having 
access to personal protection profile information , wherein said personal protection 
profile information stores information for a particular user as to which personal profile 
data associated with said particular user is accessible bv which particular applications 

a numb e r of distr i buted acc e ss moans, 

a requesting application for requesting access to certain personal profile data 
associated with a particular user, said user being identified bv a first user identity: 

an information providing application having access to said certain personal profile 
data associated with said user: 

wherein said central protection server receives said access request for said 
certain personal profile data from said requesting application and grants or rejects said 
request bv evaluating the associated personal protection profile information for said 
particular user: 

wherein said requesting application requesting said certain personal profile data 
from said information providing application in response to said central protection server 
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granting said access, rej3_uest._ w horein -4 or -e ach - of sa i d app l ications at l oaot on e acc e ss 
moan s is provided, a grant i ng - or - f e j e ct i ng of on access request for e nd user persona l 
pfefite data by a request i ng app li cation is d e t e rmined by th e centra l protect i on s e rv e r i n 
communication with at least one of a requesting appl i c a tion a nd an information 
p fe vidfflg -a pplication r transl a ting means ar e provided for id e ntity trans l ation, an i dent i ty 
© *-a- requ es ting a pp l ic a tion wi ll be conc e al e d an i nformat i on prov i d i ng app li cat i on, and 
a n i d e nt i ty of an informat i on - - provid i ng appl i c a tions wil l b e conc e al e d from a re q uest i ng 
app l ication. 

36. (Currently Amended) The system according to claim 35, wherein there is 
one access means for each of said requesting application and said information 
providing application. 

37. (Previously Presented) The system according to claim 35, wh e r e in th e r e- aro 
a p l ural i ty of access m e an s for at l east ono applic a tion. - wherein said central protection 
server provides a second user identity to the requesting application in response to said 
access reguest being granted, wherein said second user identity identifies the user 
within said information providing application and wherein said requesting application 
reguests said certain personal profile data from said information providing application 
using said second user identity, 

38-39. (Cancelled) 

40. (Currently Amended) The system according to claim 35 cla i m 38 , wherein 
the personal protection profile information is profiles are assigned one of a number of 
security levels, a lowest security level indicating that all personal profile data access is 
prevented for every application, and a highest security level indicating that all personal 
profile data is freely available. 

41. (Currently Amended) The system according to claim 36 c taim-^5. wherein 
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an interface between ar» safd requesting application and said respective access means 
comprises an Application Programmable Interface based on a generic markup 
language. 

s 42. (Previously Presented) The system according to claim 41, wherein the 

generic markup language is XML 

43. (Cancelled) 

44. (Currently Amended) The system according to claim 35 claim 4 1 , wherein 
access to said requested e nd - us e r personal profile data is granted or rejected by the 
central protection server in communication with the information providing application. 

45. (Currently Amended) The system according to claim 35 claim 41 . wherein 
access to said requested e nd ucor personal profile data is granted or rejected by the 
centra) protection server in communication with the requesting application and the 
information providing application. 

46. (Cancelled) 

47. (Currently Amended) The system according to claim 36 claim A4, wherein 
second user identity translating means are provided in the access means of the 
requesting application. 

48. (Currently Amended) The system according to any one of claim 35 claim 
44, wherein for each pa i r of applicat i ons of th e system a general Document Type 
Definition (DTD) is gi v e n to dofino allowed defined to allow f low of personal data 
between said reques ting application and said information providing application . 
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49. (Previously Presented) The system according to claim 48, wherein for each 
user a specific user DTD agreement is given. 

50. (Currently Amended) The system according to claim 36 c l aim 41 . wherein 
m said access request for e nd us e r said personal profile data is transported from the 
requesting application to its access means using Remote Method Invocation (RMI>pafld 
th e acc e ss r e qu e st includ e s a us e r ident i ty assoGtet e d - wftMh e - requ e st e d p e rsona l e nd 
u se r profil e. 

51. (Previously Presented) The system according to claim 50, wherein the 
request is transported as an XML transport object tagged with information about the 
requested end-user personal profile data. 

52. (Currently Amended) The system according to claim 50, wherein a- HT T PS 
an HTTPS protocol is used for communication between the access means of the 
requesting or information holding application and the central protection server means, 

53. (Currently Amended) The system according to claim 36 cla i m 35 , wherein 
the access means of the information requesting or providing application includes means 
for encrypting the first user identity a s soc i ated with the r e qu e sted ond - us e r pro file. 

54. (Currently Amended) The system according to claim 36 claim 35 , wherein 
the request is digitally signed with at least one of a private key of the access means of 
the requesting application and a private key of the access means of the information 
providing application. 

55. (Currently Amended) The system according to claim 54, wherein the 
request is digitally signed with a private key of the central protection s erver means, and 
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in that the digital signature of the access means are verified in the central protection 
server m e ans , 

56. (Currently Amended) The system according to claim 55, wherein the central 
server means comprises means for encrypting at least the second user identity 
associat e d w i th th e r e qu e st e d - informotion used by the information providing application 
i nformat i on . 

57. (Previously Presented) The system according to claim 35, wherein at least 
some of the applications include respective cache memory respectively for temporarily 
holding information about access requests, and a previously used session can be 
reused at least for a given time period, 

58-62. (Cancelled) 

63. (Currently Amended) A method of controlling access to personal profile 
data within a person al e nd us e r profi l e in a data communication network running a 
number of applications having or communicating with information holding means, the 
method comprising the steps of: 

providing an access request for a particular personal profile data for a particular 
user f rom a requesting application to an access means associated with a said 
requesting application using a generic mark-up language, 

forwarding the access request from the access means to a central server means 
hav i ng in format i on having moans holding having access to p ersonal protection pf ofdes 
profile information f o r said particular user, wherein said personal protection profile 
information stores information for said user as to which portion of said personal profile 
data are accessible to which particular application within said network end UGorc in tho 
system; 
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performing uoor i dent i fication encryption, th e user i dentificat i on of th e requesting 
a pplication b ei ng - €Q^ eate d4rem - an - ?nformat i on provid i ng app li cation, and an identity of 
a n information prov i d i ng app li catio n- wi ll bo concoalod from a roquooting appl i cation; 

establishing whether access to said requested personal profile data is to be 
granted or denied by using the request and the personal protections profile information 
at said central server means, 

if access to the requested personal profile data is to be granted, confirming to the 
access means of the requesting application that access is to be granted after digitally 
signing the request; and 

allowing transfer of toe an_encrypted and digitally signed request to ths an 
information providing application having access to said requested personal profile data . 

64. (Currently Amended) The method according to claim 63, wh e rein th e 
a cc es s request of a r e questing a pplication r el ates to acc e ssing data i n a persona l 
profi le , and for a granted r e qu e st, th e methodfurth e r compris e s the stop of; 

fraft cforring th e r e quested data vfa th e aoG e ss moans of an i nformat i on providing 
app li cation over a data communication network to tho access m e ans of tho r e questing 
a pp l icat i on, f urther comprising the steps of: 

receiving a first user identity from said requesting application at said central 
server means: 

translating said first user identity to a second user identity recognizable by said 
information providing application: and 

providing said second user identity, while not disclosing said first user identity, to 
said information providing application: 

65. (Currently Amended) The method according to claim 63, wherein the 
access request of a said requesting application relates to setting or updating data in a 
said personal profile data, for a granted request, the method further comprises the step 
of: 
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transferring the data to be set or updated to the information providing application 
over the data communication network, 

66, (Currently Amended) A method of controlling access to personal profile 
data wftfoi ft - Q p e rsonal end ucor profi l e in a data communication network running a 
number of applications having or communicating with information holding means, the 
method comprising the steps of: 

forwarding a request for access to data w i th i n a personal profile data for a 
particular user fr om a requesting application v i a at l oost one distributed accocs means 
to a central server means; 

establishing in the central server means for determining whether access to said 
requested personal profile d ata should be allowed or not by comparing the request with 
an end-user controlled personal protection profil e, wherein said personal protection 
prMle. indicates, wh^^ of personal profile data associated with said user can be 

accessed bv which application within said network : and 

providing tho at l east ono d i stribut e d aoooss means with information as to 
whether acc e ss said request is allowable or not, such that if a cc es s said request is 
allowable, the data communication network can be used for giving the requesting 
application access to the requested personal profile data without the identity of the 
requesting application being visible to the an information providing application abl e to 
provide providing a cc e ss to the requested personal profile data, awJ- wherein an identity 
of an saidjnformation providing application wil l bo further concealed from a said 
requesting application. 

67. (Currently Amended) The method according to claim 66, further comprising 
the steps of: 

encrypt i ng at l oast on e- of a user id e ntity as s oci a t e d w i th the roquost e d end ucor 
profi le into tho requ e st at - t h e contro l s e rver moans and the access means assoc i ate d 
with the -pe qu e sting app li cation; and 
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doorypt i ng the us e r i d e nt i ty at th e access m e ans ass oc ia t e d w i th the i nforma tie fi 
provid i ng application. 

receiving a first user identity transmitted by said requesting application at said 
central server means; 

translating said first user identity associated with said user to a second user 
identity recognizable by said information providing application; and 

communicating with said information providing application using said second 
user identity in order to prevent the disclosure of said first user identity to said 
information providing application, 

68. (Currently Amended) The method according to daim 66, further comprising 
the steps of: 

digitally signing the request transmitted by at on e or moro of th e acc e ss means 
accooiat e d w i th the w fo f m a tion requesting application, th e a cc es s m e ans acoooiatod 
with the i nformation provid i ng applicat i on and the contro l oorvor means, the accoss 
m e ans and th e oentra l corvor m e ans comprio i ng a personal profilo data prot e ct i on 
n e twork . 
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